Software bug

Despite Growing Cyber-Threats, Less Than Half of Organizations Perform Continuous Attack Surface Monitoring, New Survey From ESG and Bugcrowd Shows

Retrieved on: 
Wednesday, November 18, 2020
Data management, Security, Technology, Software, Networks, Internet, Computer security, Cyberwarfare, Security engineering, Vulnerability, Bugcrowd, Attack surface, Software bug, Bug bounty program, Asset, Cyberattack

The research found that 61% of organizations perform attack surface discovery to offset frequently changing assets in their attack surface and attack surface expansion, yet less than half (40%) of companies perform continuous attack surface management.

Key Points: 
  • The research found that 61% of organizations perform attack surface discovery to offset frequently changing assets in their attack surface and attack surface expansion, yet less than half (40%) of companies perform continuous attack surface management.
  • The survey discovered several key differences between leaders and other respondents in their strategy for attack surface and vulnerability management.
  • Of note, nearly three out of four leaders (72%) perform continuous attack surface management, signaling attack surface discovery frequency as a sign of maturity.
  • Top Fortune 500 organizations trust Bugcrowd to manage their Bug Bounty, Vulnerability Disclosure, Next Gen Pen Test, and Attack Surface Management programs.

StackHawk Raises $10M Series A to Put Application Security in the Hands of Developers

Retrieved on: 
Tuesday, October 27, 2020
Software development, Computing, Computer security, Software testing, Software engineering, Agile software development, Software development process, DevOps, Application security, DAST, Dynamic Application Security Testing, Software bug

StackHawk is an application security testing platform that allows DevOps teams to instrument automated dynamic application security testing (DAST) in the CI/CD pipeline.

Key Points: 
  • StackHawk is an application security testing platform that allows DevOps teams to instrument automated dynamic application security testing (DAST) in the CI/CD pipeline.
  • And with a strong focus on features for software developers, application security can scale across the engineering organization, creating significant efficiencies in fixing security bugs.
  • The StackHawk founding team has leveraged their backgrounds in DevOps and security to build the product that puts application security in developer's hands.
  • StackHawk, an application security SaaS startup in Denver, CO, empowers engineers to easily find and fix application security bugs at any stage of software development.

HP Expands Bug Bounty Program to Validate Office-Class Ink and Toner Cartridge Security

Retrieved on: 
Thursday, October 1, 2020
Computing, Computer printers, Office equipment, Computer companies, California, American brands, Hewlett-Packard, Bug bounty program, Printer, Software bug

The program underscores HPs commitment to delivering defense-in-depth across all aspects of printingincluding supply chain, cartridge chip, cartridge packaging, firmware and printer hardware.

Key Points: 
  • The program underscores HPs commitment to delivering defense-in-depth across all aspects of printingincluding supply chain, cartridge chip, cartridge packaging, firmware and printer hardware.
  • This bug bounty program gives HP the ability to stay ahead of attacks with access to researchers that are experts in printing technology.
  • HP had engaged in Bug Bounty programs over the years to complement and extend the companys own rigorous penetration testing.
  • For example, in 2018, HP launched the industrys first print security Bug Bounty Program .

Bugcrowd Continues Momentum With Strong Growth in Second Fiscal Quarter

Retrieved on: 
Tuesday, September 29, 2020
Networks, Internet, Security, Technology, Software, Cybercrime, Computer security, Cyberwarfare, Bugcrowd, Computing, Computer network security, Bug bounty program, Vulnerability, Cyberattack, Software bug

Bugcrowd , the crowdsourced cybersecurity platform, today announced that it continued its strong growth in the second quarter of fiscal 2021, driven by a 133% increase in bookings in its international segment and an increase of more than 50% in international customers.

Key Points: 
  • Bugcrowd , the crowdsourced cybersecurity platform, today announced that it continued its strong growth in the second quarter of fiscal 2021, driven by a 133% increase in bookings in its international segment and an increase of more than 50% in international customers.
  • More customers purchased multiple products than any second quarter in the companys history, implementing Vulnerability Disclosure, Attack Surface Management, and Penetration Testing solutions in addition to Bug Bounty programs.
  • In the last quarter, Bugcrowd continued to invest heavily in its platform to help companies of all sizes prevent potentially devastating cyber attacks.
  • The Bugcrowd MVP program, which recognizes security researchers on the Bugcrowd platform who consistently excel across customer programs, also saw significant growth during the second quarter.

ConnectWise Launches Bug Bounty Program to Help Detect Security Vulnerabilities

Retrieved on: 
Wednesday, September 23, 2020
Computer security, Cyberwarfare, Security, Bug bounty program, Competitions, Internet security, Computer network security, HackerOne, Philanthropy, Software bug, Vulnerability, Security hacker

ConnectWise is partnering with HackerOne , the industrys most trusted hacker-powered security platform, to host the program.

Key Points: 
  • ConnectWise is partnering with HackerOne , the industrys most trusted hacker-powered security platform, to host the program.
  • A bug bounty program incentivizes security research by offering monetary rewards for security vulnerabilities submitted.
  • The ConnectWise Bug Bounty program is private, meaning that it is open to invited hackers via the HackerOne platform.
  • ConnectWise is committed to addressing all confirmed vulnerabilities discovered through the Bug Bounty program and will remediate and disclose issues commensurate with severity.

Trend Micro's Zero Day Initiative Again Named Market Leader in Public Vulnerability Disclosures

Retrieved on: 
Monday, August 17, 2020
Computer security, Cyberwarfare, Cybercrime, Bug bounty program, Competitions, Internet security, Vulnerability, Application security, Trend Micro, Software bug, Responsible disclosure

"We're proud to continue what we've been doing for 15 years leading the coordinated disclosure market.

Key Points: 
  • "We're proud to continue what we've been doing for 15 years leading the coordinated disclosure market.
  • Coordinated disclosure is critical in the vulnerability industry to actually improve software security, which is what we care about most."
  • "Trend Micro's Zero Day Initiative continues to lead the vulnerability disclosure market, contributing not only the most bugs, but also the most dangerous exposures for business security," said Tanner Johnson, senior analyst for Omdia.
  • Founded in 2005, Trend Micro's ZDI changed the vulnerability disclosure market using bug bounty rewards to incentivize researchers.

InventHelp Inventor Develops Effective Trap for Killing Bed Bugs (CLM-458)

Retrieved on: 
Wednesday, July 15, 2020
Insects, Bed bug, Cimicidae, Haematophagy, RTT, Mattresses, Bed, Infestation, Software bug, Cimex, Bed bug control techniques

PITTSBURGH, July 15, 2020 /PRNewswire/ -- "I wanted to create a more convenient trap to kill bed bugs," said an inventor, from Columbus, Ohio, "so I invented the B-BUG TRAP."

Key Points: 
  • PITTSBURGH, July 15, 2020 /PRNewswire/ -- "I wanted to create a more convenient trap to kill bed bugs," said an inventor, from Columbus, Ohio, "so I invented the B-BUG TRAP."
  • The invention prevents bed bugs from entering beds, couches, reclining chairs and other locations.
  • In doing so, it could help to confine an infestation and it could help to reduce the incidence of bed bugs.
  • "My design provides added protection and it eliminates the hassle of dealing with bed bugs."

Genuitec Takes Pair Programming to the Next Level with CodeTogether 2.0

Retrieved on: 
Thursday, July 9, 2020
Gitter, Software bug, World Wide Web, Software, Computing

CodeTogether 2.0 brings major improvements to its already robust collaborative coding capabilities, including simultaneous editing and support for multiple developer groups.

Key Points: 
  • CodeTogether 2.0 brings major improvements to its already robust collaborative coding capabilities, including simultaneous editing and support for multiple developer groups.
  • Whether coding alone or in a team of 10, no time is wasted with hotkeys, dialogs or control requests.
  • Since version 1.2, CodeTogether has been end-to-end encrypted, making it impossible for anyone outside the shared session to access source code.
  • Chat with the development and support teams live on the CodeTogether Gitter community , or use the issue tracker to submit bugs or feedback.

Study: Software Failures Cost the Enterprise Software Market $61B Annually

Retrieved on: 
Thursday, May 28, 2020
Software development, Agile software development, Software development process, Extreme programming, Continuous integration, Software bug, Application software, DevOps, Software development, Agile software development, Software development process, Extreme programming, Continuous integration, Software bug, Application software, DevOps

The results revealed that while the adoption of continuous integration (CI) is on the rise, software engineering teams are unable to take a zero-tolerance approach to software failures, costing enterprise organizations billions annually.

Key Points: 
  • The results revealed that while the adoption of continuous integration (CI) is on the rise, software engineering teams are unable to take a zero-tolerance approach to software failures, costing enterprise organizations billions annually.
  • Organizations that evolve with CI will be able to resolve bugs faster, accelerate software delivery and reduce engineering costs."
  • Failing tests cost the enterprise software market $61 billion annually.
  • Their core platform, LiveRecorder, is used to reproduce and fix software bugs faster, accelerate software delivery, and reduce engineering costs.

Study: Software Failures Cost the Enterprise Software Market $61B Annually

Retrieved on: 
Thursday, May 28, 2020
Software development, Agile software development, Software development process, Extreme programming, Continuous integration, Software bug, Application software, DevOps

The results revealed that while the adoption of continuous integration (CI) is on the rise, software engineering teams are unable to take a zero-tolerance approach to software failures, costing enterprise organizations billions annually.

Key Points: 
  • The results revealed that while the adoption of continuous integration (CI) is on the rise, software engineering teams are unable to take a zero-tolerance approach to software failures, costing enterprise organizations billions annually.
  • Organizations that evolve with CI will be able to resolve bugs faster, accelerate software delivery and reduce engineering costs."
  • Failing tests cost the enterprise software market $61 billion annually.
  • Their core platform, LiveRecorder, is used to reproduce and fix software bugs faster, accelerate software delivery, and reduce engineering costs.